How to remove nckDongle_Samsung.exe
- File Details
- Overview
- Analysis
nckDongle_Samsung.exe
The module nckDongle_Samsung.exe has been detected as Trojan.Zpevdo
File Details
| Company Name: |
|
| MD5: |
a95cda2dfdd4a2de68104611fcdd5e87 |
| Size: |
3 MB |
| First Published: |
2020-05-27 03:35:55 (5 years ago) |
| Latest Published: |
2021-01-05 03:10:55 (4 years ago) |
| Status: |
Trojan.Zpevdo (on last analysis) |
|
| Analysis Date: |
2021-01-05 03:10:55 (4 years ago) |
| %temp%\rarsfx1 |
| %temp%\rarsfx3 |
| %temp%\rarsfx0 |
| %temp%\rarsfx1 |
| %temp%\rarsfx0 |
| %temp%\rarsfx3 |
| %temp%\rarsfx1 |
| %temp%\rarsfx3 |
| %temp%\rarsfx0 |
| %temp%\rarsfx0 |
|
75.0% |
|
|
10.0% |
|
|
5.0% |
|
|
5.0% |
|
|
5.0% |
|
| Windows 10 |
80.0% |
|
| Windows 7 |
10.0% |
|
| Windows 8.1 |
10.0% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00581668 |
| Name |
Size of data |
MD5 |
| CODE |
0 |
00000000000000000000000000000000 |
| DATA |
0 |
00000000000000000000000000000000 |
| BSS |
0 |
00000000000000000000000000000000 |
| .idata |
0 |
00000000000000000000000000000000 |
| .tls |
0 |
00000000000000000000000000000000 |
| .rdata |
0 |
00000000000000000000000000000000 |
| .vmp0 |
0 |
00000000000000000000000000000000 |
| .vmp1 |
3154432 |
e3da097a63883217d1cf23f828a97ba1 |
| .reloc |
512 |
6ed35910cb254dd441f01cdb1cf5f15a |
| .rsrc |
371712 |
0b0de9bcf46e03bd07cd86e5c8486e2b |
